package com.lrj.mysecurity.controller;

import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

@RestController
@RequestMapping("/admin")
public class AdminController {

    @GetMapping
    //拥有管理员角色才能访问
    @PreAuthorize("hasRole('admin')")
    public String show() {
        return "您拥有管理员角色";
    }
}
